Just for the records: I solved my problems and re-connect work now. The
problem was solved by using strongSwan 4.6.1 (make; make install).
I failed with Debian's 4.4.1-5.1 (re-connect failed) and Debian's
4.5.2-1.2 (no connect at all).
Anybody tried making Debian packets of 4.6.1? I failed ...
Hi Chris,
If anyone could help me out in figuring out why:
A) the attr plugin doesn't seem to be working
I looked into that and it seems the attr plugin only supports IP
addresses and subnets as values (i.e. no strings or ints). The attr-sql
plugin [1] supports more types, so that might be
Tobias,
Thanks for the reply.
Regarding the attr plugin only supporting IP addresses, phew - I had looked
a few times at that code and compared it w/ the docs and thought I was just
missing something that would allow arbitrary values through. Good to know,
I'll try the attr_sql plugin in the
Hi Chris,
which iOS version do you use on your device? Because I just tried how
the VPN client behaves on an iPhone 3GS with iOS 5.0.1. And well, I can
save the password even without sending UNITY_SAVE_PASSWD (I did not try
what happens if I do, actually).
Tobias,
This is with an iPhone 4S on iOS 5.0.1 - just in case this is an issue w/
my VPN config, I'm including my setup below:
config setup
charonstart=no
plutostart=yes
plutodebug=all
plutostderrlog=/var/log/pluto.log
nat_traversal=yes
conn iphone
modeconfig=pull
type=tunnel
Hi Chris,
With this config, w/ and w/o UNITY_SAVE_PASSWD, I get prompted for XAuth
credentials on each VPN connect. The VPN connection is added through a
.mobileconfig file, using VPN on demand on the iOS side.
Ah, I didn't know this feature and I never actually used Apple's
configuration
On 28.11.2011 19:08, Tobias Brunner wrote:
which iOS version do you use on your device? Because I just tried how
the VPN client behaves on an iPhone 3GS with iOS 5.0.1. And well, I can
save the password even without sending UNITY_SAVE_PASSWD (I did not try
what happens if I do, actually).
Tobias,
Awesome! That sounds like it will work, thanks so much for the great find!!
Chris Zelenak
On Monday, November 28, 2011, Tobias Brunner tob...@strongswan.org wrote:
Hi Chris,
With this config, w/ and w/o UNITY_SAVE_PASSWD, I get prompted for XAuth
credentials on each VPN connect.
Hi Chris!
Sorry for hijacking your thread - I recently setup strongSwan
(4.4.1-5.2) and connecting with my iPhone works fine, but only on the
first login. Further logins will fail and I have to restart strongSwan.
I wonder if I am the only person with this problem or if you experience
similar
Tobias,
Tested and that works great. Thanks again!
Chris Zelenak
On Mon, Nov 28, 2011 at 5:01 PM, Tobias Brunner tob...@strongswan.orgwrote:
Hi Chris,
With this config, w/ and w/o UNITY_SAVE_PASSWD, I get prompted for XAuth
credentials on each VPN connect. The VPN connection is added
Klaus,
I haven't experienced that problem myself - I'm using strongSwan 4.6.1
compiled with the following:
./configure --enable-mysql --enable-sql --enable-attr-sql
--enable-cisco-quirks --enable-medsrv --enable-mediation --enable-medcli
--enable-manager --enable-smp --with-group=vpn
Hi,
I've been trying to send down the UNITY_SAVE_PASSWD attrib (28673) to an
iPhone client to allow local client storage of the Xauth password. ( iPhone
client connecting w/ IPSEC XAuth + Cert, server compiled w/ cisco quirks )
I initially tried by loading the attr plugin and having the
12 matches
Mail list logo